CVE-2025-51479 — MEDIUM (5.4)

Vulnerability Description

Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary user groups via crafted PATCH requests to the /api/manage/admin/user-group/id endpoint, bypassing intended curator-group assignment checks.

CVSS Score

5.4

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Onyx	Onyx	0.27.0

Related Weaknesses (CWE)

CWE-639

References

https://github.com/onyx-dot-app/onyxProduct
https://github.com/onyx-dot-app/onyx/pull/4714ExploitIssue Tracking
https://www.gecko.security/blog/cve-2025-51479ExploitThird Party Advisory

FAQ

What is CVE-2025-51479?

CVE-2025-51479 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary user groups via crafted PATCH requests to the /api/ma...

How severe is CVE-2025-51479?

CVE-2025-51479 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-51479?

Check the references section above for vendor advisories and patch information. Affected products include: Onyx Onyx.